In MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF parser allow an attacker to cause a denial of service (memory leak) via a crafted file.
References
Link | Resource |
---|---|
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5502 | Exploit Issue Tracking Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2021/09/msg00013.html | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/201811-15 | Third Party Advisory |
Configurations
History
14 Dec 2021, 21:46
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) https://lists.debian.org/debian-lts-announce/2021/09/msg00013.html - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* |
24 Sep 2021, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2018-05-24 13:29
Updated : 2023-12-10 12:30
NVD link : CVE-2018-1000036
Mitre link : CVE-2018-1000036
CVE.ORG link : CVE-2018-1000036
JSON object : View
Products Affected
artifex
- mupdf
debian
- debian_linux
CWE
CWE-772
Missing Release of Resource after Effective Lifetime